$ rpki-client -vvf rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.mft File: XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.mft (raw, json) Hash identifier: PZmXaWXvp7nwJttHdp9EwLx0KEcHTKWFIg8T0fvIWQQ= Subject key identifier: A5:72:5A:1E:0E:BB:D0:6F:BC:13:66:9A:A3:09:2E:C8:DC:36:16:07 Authority key identifier: 5F:1C:53:4A:EE:FF:4E:38:0C:E5:A0:9A:10:84:BF:8F:57:09:ED:08 Certificate issuer: /CN=A91A467D/serialNumber=5F1C534AEEFF4E380CE5A09A1084BF8F5709ED08 Certificate serial: 0AF9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.mft Manifest number: 0AF2 Signing time: Mon 30 Jun 2025 19:32:42 +0000 Manifest this update: Mon 30 Jun 2025 19:32:42 +0000 Manifest next update: Mon 07 Jul 2025 19:32:42 +0000 Files and hashes: 1: XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.crl (hash: CquHEm4JV6dL+o8WAk+5T5ixtH3rC0wKLKpgUtRWYus=) 2: 43272DE249AA11EABABC8610C4F9AE02.roa (hash: ArNuSAGS500F2Au8BkBemb4Fqw5PMgC4H5tbUjnLNK4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.crl rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 19:32:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2809 (0xaf9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A467D, serialNumber=5F1C534AEEFF4E380CE5A09A1084BF8F5709ED08 Validity Not Before: Jun 30 19:32:42 2025 GMT Not After : Jul 7 19:32:42 2025 GMT Subject: CN=6862e65a-b7a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:d8:ff:e0:e0:e0:d9:26:84:61:b3:7d:5a:3a: 64:3d:8f:12:f9:60:1c:9b:4e:44:6e:cb:9c:48:38: df:a0:2c:91:b3:ff:83:5a:55:c0:cb:45:b9:2c:5d: d6:f5:92:28:9c:c4:00:79:c2:2c:d0:92:c6:e8:69: d2:95:e7:76:ac:4b:fb:65:03:33:b7:66:57:d8:6b: 7b:43:66:3a:4e:6f:ef:86:64:b0:4b:fb:53:0c:4c: a9:f6:3c:a8:85:4b:bf:3a:a8:19:8c:14:44:f1:ec: ea:50:4e:ce:20:15:ce:6f:94:7a:ed:7b:35:e4:df: 26:46:78:ac:27:b6:db:dc:95:48:05:95:26:57:fa: c3:29:e9:98:55:0f:9c:0a:ed:4a:8f:29:2e:36:ff: ee:7b:36:34:2c:b7:c7:3c:73:c5:94:ca:9a:bb:f0: 3f:41:3c:cf:5c:fa:f2:ea:aa:a3:7b:4d:de:7c:f7: 8e:7f:ef:4b:5d:86:86:f9:16:38:ab:29:de:db:56: 29:2e:cd:cc:4b:a6:53:16:04:e8:b0:db:62:de:4b: 6c:f4:ba:70:62:d7:52:3a:16:57:a3:49:33:5a:d5: 2a:01:8d:76:7d:19:7e:f7:7e:1e:ca:7d:d0:33:b3: a5:5e:7a:4e:09:4e:b4:b7:db:03:b4:fc:18:1c:88: de:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:72:5A:1E:0E:BB:D0:6F:BC:13:66:9A:A3:09:2E:C8:DC:36:16:07 X509v3 Authority Key Identifier: keyid:5F:1C:53:4A:EE:FF:4E:38:0C:E5:A0:9A:10:84:BF:8F:57:09:ED:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:1e:03:97:b5:fd:21:6d:65:a3:65:22:4d:b1:a0:68:4d:d9: d1:17:d7:d0:5b:4c:55:5d:5b:d1:02:fb:8a:ff:9a:d4:60:31: 22:a5:90:48:5d:de:fe:d2:ef:34:ab:ed:00:e3:5e:8e:6c:c3: f0:f7:7c:ed:ee:3b:6e:19:56:df:e6:18:b9:57:1c:1b:d2:97: 53:58:a1:c9:8a:40:a3:bd:4d:92:21:38:56:be:b5:2d:41:70: f8:65:dc:c7:15:a9:9f:ad:22:a2:da:3e:8c:02:9f:b9:90:4a: 66:22:c3:3a:fd:03:be:d7:a0:e9:ae:01:c7:18:26:88:27:1c: bb:6e:14:5e:12:04:63:c6:ac:6d:02:16:35:18:2f:50:63:4f: 16:52:89:67:e9:ed:a9:2f:3b:ff:50:63:64:3d:53:fd:89:24: e8:fb:5d:f9:7d:04:b2:b8:46:5b:0f:4f:c7:b4:bb:b4:ea:66: 49:a0:21:a5:9c:f7:bb:a9:bf:15:3c:24:a5:ec:ad:e0:c8:a8: 35:74:de:40:d3:15:c8:a0:b9:7a:f0:55:e7:da:43:ce:34:9e: 9e:f6:c9:07:df:98:15:85:49:a1:78:e6:5a:21:b4:d9:bc:71: 0b:41:3b:82:c1:44:89:42:0c:1f:ff:85:a6:a4:80:7f:42:50: 88:11:27:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCvkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ2N0QxMTAvBgNVBAUTKDVGMUM1MzRBRUVGRjRFMzgwQ0U1QTA5QTEwODRCRjhG NTcwOUVEMDgwHhcNMjUwNjMwMTkzMjQyWhcNMjUwNzA3MTkzMjQyWjAYMRYwFAYD VQQDEw02ODYyZTY1YS1iN2E5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAydj/4ODg2SaEYbN9WjpkPY8S+WAcm05EbsucSDjfoCyRs/+DWlXAy0W5LF3W 9ZIonMQAecIs0JLG6GnSled2rEv7ZQMzt2ZX2Gt7Q2Y6Tm/vhmSwS/tTDEyp9jyo hUu/OqgZjBRE8ezqUE7OIBXOb5R67Xs15N8mRnisJ7bb3JVIBZUmV/rDKemYVQ+c Cu1KjykuNv/uezY0LLfHPHPFlMqau/A/QTzPXPry6qqje03efPeOf+9LXYaG+RY4 qyne21YpLs3MS6ZTFgTosNti3kts9LpwYtdSOhZXo0kzWtUqAY12fRl+934eyn3Q M7OlXnpOCU60t9sDtPwYHIje+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKVyWh4O u9BvvBNmmqMJLsjcNhYHMB8GA1UdIwQYMBaAFF8cU0ru/044DOWgmhCEv49XCe0I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDY3RC84NDhFN0QxODQ5 QTkxMUVBQTZGREQzMEZDNEY5QUUwMi9YeHhUU3U3X1RqZ001YUNhRUlTX2oxY0o3 UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h4eFRTdTdfVGpnTTVhQ2FFSVNfajFjSjdRZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDY3RC84NDhFN0QxODQ5QTkxMUVBQTZGREQzMEZDNEY5QUUwMi9YeHhUU3U3X1Rq Z001YUNhRUlTX2oxY0o3UWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACHgOXtf0hbWWjZSJNsaBoTdnRF9fQW0xVXVvRAvuK/5rUYDEipZBI Xd7+0u80q+0A416ObMPw93zt7jtuGVbf5hi5Vxwb0pdTWKHJikCjvU2SIThWvrUt QXD4ZdzHFamfrSKi2j6MAp+5kEpmIsM6/QO+16DprgHHGCaIJxy7bhReEgRjxqxt AhY1GC9QY08WUoln6e2pLzv/UGNkPVP9iSTo+135fQSyuEZbD0/HtLu06mZJoCGl nPe7qb8VPCSl7K3gyKg1dN5A0xXIoLl68FXn2kPONJ6e9skH35gVhUmheOZaIbTZ vHELQTuCwUSJQgwf/4WmpIB/QlCIESdw -----END CERTIFICATE-----Generated at Wed Jul 2 16:01:40 2025 by rpki-client